<?php
include('global.php');

if(isset($_POST['report_sub'])){
	if(is_injection($_POST['report_id'])){
		$db->jumpAction('report','1','哼哼，你的输入有非法词汇，重输。');
	}
	$sql = "SELECT `userid` FROM `renren_hunauhomeurl` WHERE `userid` = '".$_POST['report_id']."'";
	$query = $db->query($sql);
	$num = $db->num_rows($query);
	if($num>0):
		$sql = "UPDATE `renren_hunauhomeurl` SET `fake_votes` = `fake_votes` +1 WHERE `userid` = '".$_POST['report_id']."'";
		$query = $db->query($sql);
		$db->jumpAction('report','1','报告成功，等我的好消息！');
	else:
		$db->jumpAction('report','1','哼哼，根本就没有这个人，还想骗我！！！回去重新报告');
	endif;
	
}

include('templates/report.html');





?>